GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,701
Maven
5,000+
npm
4,328
NuGet
761
pip
4,103
Pub
12
RubyGems
958
Rust
1,064
Swift
45
Unreviewed advisories
All unreviewed
5,000+
346 advisories
Filter by severity
The DesignThemes LMS plugin for WordPress is vulnerable to Privilege Escalation in all versions...
Critical
Unreviewed
CVE-2025-13542
was published
Dec 2, 2025
The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through...
Critical
Unreviewed
CVE-2025-59693
was published
Dec 2, 2025
The FindAll Listing plugin for WordPress is vulnerable to Privilege Escalation in all versions up...
Critical
Unreviewed
CVE-2025-13538
was published
Nov 27, 2025
The Tiare Membership plugin for WordPress is vulnerable to Privilege Escalation in all versions...
Critical
Unreviewed
CVE-2025-13540
was published
Nov 27, 2025
The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and...
Critical
Unreviewed
CVE-2025-13675
was published
Nov 27, 2025
The RupsMon.exe service executable in UPSilon 2000 has insecure permissions, allowing the ...
Critical
Unreviewed
CVE-2025-66266
was published
Nov 26, 2025
NVIDIA DGX Spark GB10 contains a vulnerability in SROOT, where an attacker could use privileged...
Critical
Unreviewed
CVE-2025-33187
was published
Nov 25, 2025
The EduKart Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,...
Critical
Unreviewed
CVE-2025-13559
was published
Nov 25, 2025
A missing validation process exists in Serv U when abused, could give a malicious actor with...
Critical
Unreviewed
CVE-2025-40548
was published
Nov 18, 2025
The EasyCommerce – AI-Powered, Fast & Beautiful WordPress Ecommerce Plugin plugin for WordPress...
Critical
Unreviewed
CVE-2025-11457
was published
Nov 11, 2025
Dell CloudLink, versions prior to 8.1.1, contain a vulnerability where a privileged user with...
Critical
Unreviewed
CVE-2025-46364
was published
Nov 5, 2025
Nagios XI versions prior to 2024R1.1.3 contain a privilege escalation vulnerability in which an...
Critical
Unreviewed
CVE-2024-13997
was published
Nov 4, 2025
The Doccure Core plugin for WordPress is vulnerable to privilege escalation in versions up to,...
Critical
Unreviewed
CVE-2025-8900
was published
Nov 3, 2025
The King Addons for Elementor – Free Elements, Widgets, Templates, and Features for Elementor...
Critical
Unreviewed
CVE-2025-8489
was published
Oct 31, 2025
Nagios XI versions prior to 2024R1.0.1 contain a privilege escalation vulnerability in the System...
Critical
Unreviewed
CVE-2024-14009
was published
Oct 31, 2025
Privilege Escalation through SUID-bit Binary.This issue affects BLU-IC2: through 1.19.5; BLU-IC4:...
Critical
Unreviewed
CVE-2025-12424
was published
Oct 28, 2025
Local Privilege Escalation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .
Critical
Unreviewed
CVE-2025-12425
was published
Oct 28, 2025
The WP Freeio plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,...
Critical
Unreviewed
CVE-2025-11533
was published
Oct 11, 2025
In DriveLock 24.1.4 before 24.1.5, 24.2.5 before 24.2.6, and 25.1.2 before 25.1.4, attackers can...
Critical
Unreviewed
CVE-2025-55187
was published
Sep 26, 2025
An issue in PHPGurukul Online-Library-Management-System v3.0 allows an attacker to escalate...
Critical
Unreviewed
CVE-2025-57118
was published
Sep 16, 2025
The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to...
Critical
Unreviewed
CVE-2025-6758
was published
Aug 19, 2025
The Reveal Listing plugin by smartdatasoft for WordPress is vulnerable to privilege escalation in...
Critical
Unreviewed
CVE-2025-6994
was published
Aug 6, 2025
ProTip!
Advisories are also available from the
GraphQL API